$MTInclude module="DTD"$>
Posted by <$MTEntryAuthor$> at <$MTEntryDate$>
Posted by <$MTEntryAuthor$> at <$MTEntryDate$>
The above comment was digitally signed using PGP. The Public Key used to verify the signature was downloaded from the URL listed above. Hopefully, the signature was valid, the UID corresponds to <$MTCommentAuthor$> and the URL from which the key was fetched corresponds to <$MTCommentURL$> (or some other website controlled by <$MTCommentAuthor$>). If so, you can have a high degree of confidence that <$MTCommentAuthor$> authored the comment. Conversely, if the URL from which the key was fetched doesn't belong to <$MTCommentAuthor$>, then you have serious reason to doubt that <$MTCommentAuthor$> wrote the comment.
If the signature was invalid, there could be many things going on.
In any case, you should be suspicious, and might try manually verifying the “raw” PGP-signed comment from the textbox above. You'll need <$MTCommentAuthor$>'s PGP Public Key to do that. You'd be best-off obtaining it directly from <$MTCommentAuthor$>.
"><$MTCommentSubject$>
Posted by <$MTCommentAuthor$> at <$MTCommentDate$>